​

Security & Account Safety

Your BrikSync PropOS account holds sensitive data about your properties, tenants, and financial records. We strongly recommend enabling all available security features to protect your account.

---

​

Two-Factor Authentication (2FA / MFA)

Two-factor authentication adds a second layer of security to your login. Even if someone obtains your password, they cannot log in without the second factor.

​

Enabling 2FA

1. Go to Settings → Security.
2. Click Enable Two-Factor Authentication.
3. Choose your preferred method:
   • Authenticator App — use an app such as Google Authenticator, Authy, or 1Password to generate one-time codes. This is the recommended method.
   • Email OTP — a one-time code sent to your registered email address each time you log in.
4. Follow the setup steps for your chosen method.
5. Save your backup codes in a secure location. These can be used to access your account if you lose access to your 2FA method.

​

Disabling 2FA

You can disable 2FA from Settings → Security → Two-Factor Authentication. We do not recommend doing this unless you are switching to a different 2FA method.

---

​

Password Security

​

Changing Your Password

1. Go to Settings → Security → Change Password.
2. Enter your current password.
3. Enter and confirm your new password.
4. Click Update Password.

Your new password must be at least 12 characters and should include a mix of uppercase letters, lowercase letters, numbers, and symbols. A password manager is recommended for generating and storing strong passwords.

​

Forgotten Password

If you cannot log in, go to briksync.com and click Forgot Password on the login page. Enter your email address and we will send you a password reset link. Reset links expire after 30 minutes.

---

​

Session Management

BrikSync PropOS keeps a record of your active sessions — the devices and browsers where you are currently logged in.

​

Viewing Active Sessions

1. Go to Settings → Security → Active Sessions.
2. You will see a list of sessions including device type, browser, approximate location, and last active time.

​

Revoking a Session

If you see a session you do not recognise:

1. Click Revoke next to the suspicious session.
2. That session will be immediately logged out.

If you believe your account may be compromised, click Revoke All Other Sessions to log out of every session except the one you are currently using. Change your password immediately afterwards.

---

​

Email Address Security

Your email address is used to log in and receive important account notifications. To change it:

1. Go to Settings → Profile.
2. Click Change Email.
3. Enter your new email address.
4. We will send a verification link to the new address.
5. Click the link to confirm the change.

Your old email address remains active until the new one is verified.

---

​

GDPR data requests

If you need to export your personal data, request account deletion, or erase personally identifiable information (PII), you can submit a GDPR data subject request directly from your account settings.

​

Available request types

​

Submitting a request

1. Go to Settings → Security → GDPR Data Requests.
2. Select the request type — export, deletion, or erasure.
3. Click Submit Request.

Your request enters a processing queue. You can track its status from the same page.

​

Request statuses

For export requests, a download link is provided once processing completes. The link has an expiry time — download your data before it expires.

---

​

Recognising Suspicious Activity

If you notice anything unusual — unexpected logins, changes you did not make, or emails about activity you did not initiate — take these steps immediately:

1. Change your password.
2. Revoke all other sessions from Settings → Security → Active Sessions.
3. Review the Audit Log (Admin accounts) for any recent changes.
4. Contact BrikSync support through the in-app help widget.

---

Built by Errsol Technologies LLP · Karan · BrikSync PropOS